1. Engage
  2. Security & Compliance
  3. Permissions & Access

How to Set Up Azure AD User Provisioning (SCIM)

Jared Watson ·

Create Application

  1.  
    1. Name the app something easy to remember (i.e. BombBomb)
    2. Choose the option "integrate any other application you don't find in the gallery"
    3. Create

a35d83d1-e86a-4df1-ae29-ba0c69738961.png

Set up Provisioning

  1.  
    1. On the left navigation menu, click ‘Provisioning’, then, ‘Get started’

243b2cff-5106-4d17-b7d6-f0b39dd47479.png

Select ‘Automatic’ Under Mode

  1.  
    1. For Tenant URL use: https://api.bombbomb.com/v2/scim
    2. For Secret Token, use the oAuth Token of the Paid Seat Team Admin’s account (see below for instructions on how to obtain it).
    3. Paste the oAuth token into the ‘Secret Token’ field shown above.
    4. Test Connection to ensure set up correctly.

 

How to Retrieve oAuth Token

  1. Log into the Paid Seat Team Admin’s BombBomb account, right-click on the screen, and click ‘Inspect’

7e7b5a72-3367-40dd-a837-c553fb906bb6.png

2. Go to the ‘Application’ tab of the sidebar.

3. On the left-hand side, expand ‘Cookies’ and select https://app.bombbomb.com

4. In the filter, type BBV2APITOKEN

5. Click on the record, and copy the token shown below.

7d827c40-08a7-4953-88e0-300c39530a3f.png

6. Paste into the ‘Secret Token’ field shown above.

 

Update Attribute Mappings

1. Click ‘Provisioning’ on the left panel, then ‘Edit attribute mappings’.

f113a001-9f8a-4d43-9388-80d4a939077f.png

2. Expand ‘Mappings’ and click on ‘Provision Azure Active Directory Users’.

Note: Ensure 'Provision Azure Active Directory Groups' is disabled here.

a3495f7a-cbbe-4eb7-84b7-e106e89cef98.png

3. Click on the ‘userPrincipalName’ row and change the ‘source attribute’ to mail.

0661b968-a397-4b89-992f-44ce16a3f5a6.png

Add the Users to the Application

While in the newly created application, click on 'Users and Groups' and add any team members you’d like.

0fbe120a-a637-46a0-8d86-eaf76b806bfc.png

Go back to Provisioning and click ‘Start provisioning’. This process may take a while.

18bd29d5-84a7-47f8-b735-acf2bb36f541.png

If you’d like to add your team members one by one, you can use the Provision on-demand feature.

 

Updating a user’s profile

You can update the following fields from Azure: 

  • First name
  • Last name
  • Job title
  • Phone number
  • Street address
  • City
  • State
  • Postal code
  • Country

We do not support updating email address and suffix at this time.

 

Removing a user from the team

Select the user and click ‘Remove’.

c0078333-867f-4695-9dbe-bd3de9dbfbe8.png

 

 

Permissions & Access